Techie: January 2024

Basic Azure interview questions and answers What is Cloud Computing?

Answer: Cloud computing is a concept that means storing and accessing data on the internet. In the case of cloud computing, you are accessing the data from a remote server.

It’s like you are using a vendor’s server to store or access your data, and you are paying for the time you are using the server.

What are the differences between a public cloud and a private cloud?

Answer:

Private Cloud Public Cloud A private cloud belongs to a specific organization, and no other organization can access the same Cloud.

A public cloud is a cloud service that shares the services among different organizations. A private cloud is also known as an internal cloud or enterprise cloud You can call it a Shared cloud. Maintenance in the case of a Private cloud is difficult compared to the Public cloud. Maintenance in the case of a public cloud is easy compared to the Private cloud.

What are the advantages of cloud computing?

Answer: There are several benefits or advantages of using cloud computing. A few are explained below

Cost-saving is one of the incredible benefits of cloud computing, so many organization prefers to use cloud computing.

Highly available with High-speed performance. Back up and restoring data is very easy in Cloud computing. Unlimited storage capacity is an important feature here. Pay only for how much you are using. In case of a natural disaster or power failure, it will save your data and help with the Business continuity plan for an organization.

What are the types of scaling in cloud computing?

Answer: There are two types of scaling in the cloud computing

Horizontal scaling: Horizontal scaling is when you scale up your pool by adding more systems/machines to your collection of resources Vertical scaling: Sometimes, you want to scale up your existing machines by increasing the (CPU and RAM) size.

What do you mean by PaaS, SaaS, and IaaS?

Answer: Paas: Paas is Platform as service is a cloud computing model where you will get all the hardware and software tools that are needed for the development activities.

Saas: Saas is Software as a service that delivers an application as a service via the internet. There is no need to install or maintain the software. You need to access those as a service.

IaaS: IaaS is Infrastructure as a service that provides virtualized computing resources over the internet. That helps the organization to build and manage their servers, network, operating systems, etc. Some of the Examples are Microsoft Azure, Rackspace, and Amazon Web Services (AWS).

What is Microsoft Azure?

Answer: Microsoft Azure is a set of cloud services that help your organization to meet your business requirements. You can build, manage, and deploy different applications with the help of different frameworks and tools using Azure. For more information, you can check What Microsoft Azure is and how Microsoft Azure works.

Why to Use Azure?

Answer: There are many reasons and benefits to choosing Azure. All solutions are in one place. A few reasons are listed below You can easily create a web application with a few numbers of clicks The testing application is accessible here. Once the development and testing are over for a particular application, you can use Azure to host the application. You can create a virtual machine(VM) for all the activities.

What is Azure Portal?

Answer: Azure Portal is a single portal or a place where you access and manage all your applications. It helps to build, manage, and monitor your simple web applications to complex cloud applications using a single portal. To know more about this, you can refer to An Introduction to Microsoft Azure Portal.

What are the different roles in Azure?

Answer: There are three different types of roles are there in Azure

Web Role: A web Role is used to deploy web applications that are built on other languages that are supported in Azure. Worker Role: It supports the Web Role and gives the solution for the background services. Virtual Machine Role: The virtual machine Role gives the option to manage virtual machines for different operations.

What is the list of Azure Services and Resources?

Answer: Azure provides more than 200 services. Some of the services are as below

Virtual Machine: Helps to create a virtual machine in different operating systems like Windows, Linux, etc. Cloud Service: Once you deploy your application in the cloud, Azure Cloud will handle everything like load-balancing, monitoring, etc. You do not need to take any headaches on this. Functions: With this service, you can create different applications using any programming language. Azure CDN: CDN stands for Content Delivery Network. The purpose of the Azure CDN is to deliver content to users. Azure CDN uses a high bandwidth. Azure DNS: This service helps you to host your DNS domains in Azure. Express Route: This is an excellent service that helps to connect your on-premise network to the Microsoft Cloud or any other service. Virtual network: Different services can connect with the help of a Virtual network service. Blob Storage: Used to store massive amounts of unstructured data. Disk Storage: This service is a virtual hard disk that behaves almost similarly to a physical hard disk. File Storage: This service offers regular file shares in the cloud or on-premises environments.

What are the different principal segments of the Windows Azure platform?

Answer: Three principal segments are present in the case of the Azure platform, i.e., Compute, Storage, and Fabric.

Azure Compute provides three types of roles: Web roles, worker roles, and Virtual machine roles. All roles are explained as above.

Azure Storage provides services like Queue storage, Table Storage, Blob Storage, File Storage, etc. For more information on storage types, you can refer to Azure storage types.

Azure Fabric provides services like Access, Caching, Integration, etc.

What is table storage in Windows Azure?

Answer:

The Azure Table storage allows us to store structured data. It stores NoSQL data. Azure Table storage service allows storing structured, non-relational data. The main advantage of table storage is that it is fast and cost-effective for many applications. You can store any number of entities in the table. You can use table storage to store datasets that don’t require complex joins or stored procedures.

What is Queue storage in Windows Azure?

Answer: Azure Queue storage is a type of Azure storage that can store large numbers of messages that can be accessed from anywhere in the world using HTTP or HTTPS protocols.

This is like FIFO implementation. Messages will be added to the end of the queue. The size of a queue message can be up to 64 KB.

What is Azure diagnostic?

Answer: This is an API-based system that collects the data to diagnose the application which is running continuously. This is one of the essential APIs by Microsoft.

19- What are the examples of some applications in Azure?

Answer: Microsoft Azure provides many applications. For example, Web Applications, Cloud Services, Mobile applications, Storage services, Virtual computing, Networking services, Analytics services, etc.

What is auto-scaling in Azure?

Answer: Auto-scaling is a feature that enables your application to scale up or down automatically based on your defined condition. Based on the demand, the Azure auto-scaling feature scales out more instances.

An auto-scaling solution reduces the amount of manual work engaged in the case of scaling an application.

What do you mean by BLOB storage, and what are their types?

Answer: Azure Blob storage allows storing unstructured data. We can store massive data like text files, images, audio, videos, media files, application installers, etc.

These blob storage data can be accessed anywhere via protocols like HTTP or HTTPS.

The Blob storage is of three types

Block Blobs storage: Contains small blocks with unique IDS. Append Blobs storage: In this case, we cannot update or delete any of the existing blocks Page Blob storage: The max size of a page blob is 8 TB.

What are virtual machine scale sets in Azure?

Answer: You can use the virtual machine scale sets to deploy and manage a set of identical virtual machines (VM). This provides high availability to our applications, and it allows us to manage, configure, and update a large number of virtual machines (VM) in one place.

What is enterprise warehousing?

Answer: It means the data is developed by an organization having access at a single point throughout the globe. It is used in the case of massive data.

What do you mean by an Availability Set?

Answer: An availability set is a logical grouping of virtual machines (VMs) that allows Microsoft Azure to understand how your application is built to provide availability and redundancy. This helps to isolate the VM Resources from each other when they are deployed.

What are Network Security Groups?

Answer: A network security group (NSG) contains different security rules that allow or can deny the inbound network traffic or the outbound network traffic to subnets from other types of Azure resources. These rules are called a list of Access Control List (ACL) rules. Network security groups (NSGs) can be associated with different subnets or individual NICs connected to a subnet.

What is a break-fix issue?

Answer: It is an industry term. Technical-related problems for an organization are known as the break-fix issue. When work for a specific technology fails, then break-fix comes into the picture. A support organization will solve this.

What is Windows Azure Scheduler?

Answer: If you want to create jobs and schedule them to run in the cloud in some specified timeline, then in that case, you can use the Windows Azure Scheduler. You can also call different services inside and outside Azure, like calling HTTP and HTTPS endpoints, etc.

What is a Fault Domain?

Answer: This is a logical group that contains a set of hardware that shares a common power source and network switch. This process minimizes the issues in case of Physical hardware failures, network outages, power interruptions, etc. When creating Virtual machines (VM), the Azure platform automatically distributes these VMs with these fault domains.

What is the use of VNET?

Answer: VNET helps to represent your network within the cloud environment. It allows you to isolate your instances logically launched in the cloud environment from the rest of your Azure resources.

What is service fabric in Azure?

Answer: This is a middleware platform that provides you with a more scalable outcome. It renders an enterprise that is more managed and reliable.

What is Azure Advisor?

Answer:

Azure Advisor is a free tool from Microsoft. It analyzes your configurations and usage and provides personalized recommendations to help you optimize your Azure resources for high availability, security, etc. It guides you on the area of improvement in the case of all the Azure resources so that the performance of the Azure resource will increase.

It shows the way to speed up your Azure applications. It detects possible security threats and vulnerabilities.

What is the difference between Service Bus Queues and Storage Queues?

Answer: Service Bus Queues is a terminology where a sender delivers a message to a Queue that is used to reside in a Service Bus Namespace. Later, the receiver receives that message.

Azure Queue storage is a type of storage that can store large numbers of messages that can be accessed from anywhere in the world using HTTP or HTTPS protocols.

This is like FIFO (First in First out) implementation. Messages will be added to the end of the queue. The size of a queue message can be up to 64 KB.

What is the role of the traffic manager in Windows Azure?

Answer:

Azure Traffic Manager is a traffic load balancer that helps you to distribute the traffic equally to all the services across global Azure regions that provide high availability and responsiveness for the Azure services.

Azure Traffic Manager helps load the page faster.

What are the different ways to host websites in Azure?

Answer: There are different ways to host a website in Azure

You can use Azure App Services to host most of your applications in Azure. This is one of the best options compared to other options that allow quick deployment, scalability, and management of your applications. You have another option, which is Service Fabric, which will help in case you have an application that requires Massive Scaling and Stateful Services, etc

State the different Options to manage session state in Windows Azure?

Answer: Below are the options to manage the session state in Windows Azure

Windows Azure Caching Azure Table SQL Azure

What are the types of BLOB storage and explain those?

Answer: BLOB storage is of three types page, Append Blobs, and the block blob.

Block blobs are small blocks with unique IDS. One block blob can contain up to 50,000 blocks. In the case of Append Blobs, we cannot update or delete any existing blocks. In Block Blobs storage, unique IDs are not kept secret, but all the unique IDs are kept secret. The maximum size of a page blob is 8 TB.

What are unconnected lookups?

Answer: In the unconnected lookups method, User-defined values are considered in the unconnected lookups.

What Is Azure Compute Emulator?

Answer: The Azure Compute Emulator helps us to debug and test the Azure Cloud Services in our local environment without deploying the cloud service to Microsoft Azure.

What Is Azure Data Factory?

Answer: Azure Data Factory is a cloud-based ETL and data integration tool or service that helps you to create different data-driven workflows that make it easy to move the data.

One more advantage of this service is it is faster compared to others.

What are the different pricing models of Microsoft Azure

Answer: Below are the other pricing models of Microsoft Azure

Usage-Based: As per this price model, you will be charged based on your usage of the Azure Resources.

Free: In this pricing model, you will not be charged at all. You will be utilizing the offerings at free of cost.

Free Software Trial: In this model, you will get a free version as a free trial. This free trial version will be for a certain number of days. Once the trial period is over, you will be charged the next day on words as per the Microsoft standard charges for that particular offering.

BYOL Model: This model is called Bring Your Own License, which is a licensing model that allows organizations to use their licenses flexibly, in case of on-premise or the cloud.

Monthly Fee: As per this model, you will be charged a Monthly fixed rental amount based on your subscription and the usage limit

What is a storage key?

Answer:

The storage key is also known as the Access Key. This is used as an authentication way for accessing the storage services account to manipulate information based on our business requirements.

What are Azure App Services?

Answer: Azure App Service is known as a fully managed Platform as a service (Paas) that is responsible for integrating Microsoft Azure websites, BizTalk and Mobile services, etc, into a single service and also adds some new capabilities or features that enable the integration with the On-premises or the cloud systems.

What do you mean by profiling in Azure?

Answer: In one line, Profiling in Azure is a process of measuring the performance analysis of an application.

What is Azure DevOps?

Answer: Microsoft provides another Software as a service (SaaS) platform that helps to give a complete DevOps toolchain starting from the software development to the deployment, meaning the complete software development life cycle. Azure DevOps provides services like Azure Boards, Azure Pipelines, Azure Repos, Azure Artifacts, Azure Test Plans, etc.

What is Cosmos DB?

Answer:

Azure Cosmos DB is the right solution for applications like web, mobile, and gaming, with predictable throughput and high availability. Using this service, Customers can scale throughput and storage independently for different geographical regions.

What Is Azure Cognitive Services?

Answer: Azure Cognitive service is one of the excellent services from Microsoft that helps the developers to implement Artificial Intelligence (AI), and Machine Learning (ML) without having the expertise in these areas. Check out some more information on Azure Cognitive service now.

What is Azure Cognitive Services Face API?

Answer: The Azure Cognitive Services Face API provides an advanced algorithm that helps you detect or read human faces in different digital images. That includes detecting the emotions and facial expressions like happiness, fear, etc. Check out some more information on Azure Cognitive Services Face API now.

What is Azure Cognitive Services, Luis?

Answer: Azure Cognitive Services Luis means Azure Cognitive Services Language Understanding.

What is Azure Text Analytics API?

Answer: Azure text analytics service is one part of Azure cognitive services that helps you to perform different operations efficiently, like Keyphrase extraction, Sentiment analysis, Language detection, named entity recognition, etc. Check out some more information on Azure Text Analytics API now.

What are the various power states of a Virtual Machine?

Answer: The different power states of a virtual machine are explained below

Starting: It means that the Virtual Machine is being created.

Running: This status means that the Virtual Machine is running. Stopping: The status means that the Virtual Machine is being stopped. Stopped: It indicates that the Virtual Machine is stopped. Deallocating: This means that the Virtual Machine is being deallocated

Why is Azure Active Directory used?

Answer: Microsoft provides a cloud-based, secure identity and access management service known as Azure Active Directory (Azure AD) that helps your employees sign in and access resources like Microsoft Office 365 and external resources. This is more secure compared to other login methodologies.

What is Azure Search?

Answer: Microsoft provides a Search as a solution called Azure Search that allows Developers to build search applications for multiple sources of content in Web, Mobile, and Enterprise applications with the help of the REST API interface.

What is a Resource group?

A Resource Group is nothing but a logical container where you are creating your Azure resources. A resource group created in a specific region can contain the resources created in the other regions. There is no restriction on that.

Is it possible to move a resource from one group to another?

Answer: The answer is Yes, you can move a resource from one group to the other one.

What is the number of resource groups a subscription can have?

Answer: Under a particular subscription, you can deploy up to 800 resource groups.

How Azure can handle this scenario?

Suppose you have a requirement where you need to host the front end on Azure, But the Backend or DB part needs to be hosted on-premises.

Answer: Azure VNET-based “Point to Site” comes here into the picture, which helps you to connect a limited number of resources.

What storage is best suited to handle unstructured data?

Answer: Blob Storage is considered to be the best-suited storage here.

How Azure can handle this scenario?

Answer: Your client asked you to ensure that all your Virtual Machines can communicate securely with each other.

Answer: Azure Virtual Network can help you out with this scenario that helps Azure resources to communicate with each other via the internet or on-premises networks securely.

How can you handle this scenario with Azure?

Answer: You have a requirement related to authentication, where you need to ensure that whenever any user logs in, they shouldn’t be prompted to re-enter their passwords.

must configure Azure AD Sync to use single sign-on to achieve this requiremen

What are the options to manage session state in Windows Azure?

Answer: The options to manage session state in Windows Azure are as below

Windows Azure Caching SQL Azure Azure Table

What is HDInsight in Microsoft Azure?

Answer: Azure HDInsight is a cloud service and a Hadoop component that helps you process a massive amount of data quickly. It is speedy and cost-effective compared to the other open-source frameworks.

Which are the services used to manage resources in Azure?

Answer:

Azure Portal Azure Resource manager Application Insights Log Analytics

What are the drawbacks of using Microsoft Azure?

Answer: A few are some of the critical drawbacks of using Microsoft Azure

You need more bandwidth to work with Azure as it is a web-based App. So, there are scenarios where you will see the slowness. You must have platform expertise to work with Azure. Azure almost forces you to put all your eggs into one basket, i.e., a single vendor strategy. When you think of your data, working with a single vendor is always a risk factor. For certain services like Virtual machines, the price is a bit high.

What are the three key components of the Windows Azure platform?

Answer: Below are three main components of Azure

Azure Storage Compute AppFabric

What are the three types of Disks used by Virtual machines?

Answer: Below are the three types of Disks used by the VMs

Operating system disk Temporary disk Data disk

What are the types of cloud services?

Answer: Below are the two most common types of cloud services available

Public cloud Private cloud

What is the main use of Temp Drive in VM?.

Answer: The temp drive is a short drive that is used for paging in Azure, and the main point is don’t use this drive for storage purposes.

What are the key benefits of Azure Traffic Manager?

Answer: Below are a few key benefits of Azure Traffic Manager

The main benefit is it helps you to increase your performance. During the time of maintenance or path update, no downtime is required. It’s pretty easy to configure the Azure Traffic Manager.

What are the different instance types offered by Azure?

Answer: Below is the list of different instance types Microsoft Azure offers.

General Purpose: One of the best options for the Development and testing environments purpose. It provides 256 GB memory with low to medium-traffic web servers and small to medium databases. Memory-Optimized: Provides you with high memory (3892 GB Memory). One of the best options for relational database servers, large caches, etc. Compute Optimized: It is suitable for medium web servers, application servers, batch processes, etc, and provides you with a high CPU-to-memory ratio with around 144 GB of Memory. Storage Optimized: one of the suitable options for Big Data, NoSQL, and SQL Databases and provides you 256 GB of Memory. High-Performance Compute: Provides you with the fastest POwerful virtual machine with 224 GB of Memory. GPU: Virtual machines with high graphics and with 448 GB of Memory.

What about Federation in Azure SQL?

Answer: SQL Azure Federation helps you by providing the tools that can help the developers access the databases among themselves. It also helps to reduce the single point of failure. It helps to save a lot of costs by using cloud resources whenever needed.

What will you do if a drive failure occurs?

Answer: This is one of the exciting questions. Remember, in this scenario, the first step you need to do is unmount the drive. The next step is to replace the drive, and then, finally, you need to format it.

What is autoscaling in Azure?

Autoscaling is an essential feature of Azure services. This feature helps the Azure resources to change the settings or scale the services based on demand. As part of this feature, the Azure service also provides additional resources on demand

What is Azure, and How Does it Work?

Answer: You can check out What is Azure and How Does it Work? now.

Is it possible to move the services from one Resource Group to Another?

Answer: The answer is Yes, we can able to move the Azure Resources from one Resource Group to another using PowerShell And AzurePortal.

Is it possible to move the Azure Virtual Machine from one Resource Group to Another?

Answer: Yes, you can move the Azure VM from one resource group to another using Azure PowerShell and Azure Portal.

Is it possible to move the Azure resources from one Subscription to Another Subscription?

Answer: Yes, it is possible, but the only point to note here is both subscriptions must be present in the same Azure Active Directory Tenant.

Is it possible to change an Instance Size once the Virtual Machine has been created?

Yes, it is possible. Navigate to Settings and then the Size option.

What is the primary purpose of using Gateway Subnet?

Answer: The primary purpose of the Gateway Subnet is to establish a connection between multiple Virtual Networks.

What are the various types of Virtual Network Gateway?

Answer: Below are the different types of Virtual Network Gateway.

VPN Express Route

What is the key difference between Application Gateway and Azure Load Balancer?

Is it possible to add more than one Private IP Address for a single Virtual Machine? Yes, it is possible by adding the NIC.

What is the best feature Azure is providing to monitor the Virtual Machines that are running in Azure?

Answer: Log Analytics is one of the best options in this case.

Can you tell me what is the maximum size of a single disk supported for a Virtual Machine?

Answer: The maximum size is up to 4 TB.

Is it possible to do Vertical Scaling of a Virtual Machine?

Answer: Yes, it is possible to do a vertical scaling of a Virtual machine.

What do you mean by the concept of the table in Windows Azure?

Answer: Table is a type of Azure Storage that can store information.

What do you mean by Cmdlet Command in Microsoft Azure?

Answer: The cmdlet command is the command used by Azure PowerShell to perform a different task for the Azure resources.

What is cspack?

Answer: Cspack is a command-line tool that helps us generate a service package file to prepare an application for deployment in Windows Azure.

What is the script to create a VM in Azure CLI?

Answer: Below is the Azure CLI script to create a VM.

az vm create --resource-group DemoResourceGroup --name TSINFOVM --image win2016datacenter --admin-username Testuser --admin-password Password@12345

What is an Azure Service Level Agreement (SLA)? Answer: The SLA states the commitments of Microsoft for the uptime and connectivity, which is more than 99%.

Is it possible to add an existing VM to an availability set?

Answer: No, it’s not possible. If you want, we need to create the VM within that set

How to create a VM in PowerShell?

Answer: You can check out the How to Create Azure VM (Virtual Machine) for the PowerShell script to create an Azure Virtual Machine.

What are the key components of the Azure Resource Manager (ARM)? Azure Resource Manager (ARM) is an Azure resources deployment and management service. The key components of ARM include:

Resource groups: A logical container for resources that are deployed within an Azure subscription. ARM templates: JSON files that define the resources, configurations, and dependencies for an Azure deployment. ARM API: A RESTful API for managing Azure resources programmatically. Role-based access control (RBAC): A mechanism for controlling access to Azure resources based on user roles and permissions.

How do you assess the readiness of an application for migration to Azure? This is one of the common Azure migration interview questions. Assessing the readiness of an application for migration to Azure involves evaluating various factors to ensure a smooth transition and optimal performance in the cloud. Here are some key steps to follow:

Compatibility analysis: Review the application's architecture, technology stack, and dependencies to ensure they are compatible with Azure services and platforms. Check for any deprecated or unsupported components that may need to be replaced or updated.

Performance and scalability: Analyze the application's performance requirements, such as response times, throughput, and resource utilization. Determine if the application can benefit from Azure's auto-scaling, load balancing, and other performance optimization features.

Data migration: Assess the data storage requirements, including the type and size of the data, and choose the appropriate Azure storage service, such as Azure SQL Database, Cosmos DB, or Blob Storage. Plan for data migration, including data transfer methods, data transformation, and data synchronization.

Security and compliance: Review the application's security requirements, such as authentication, authorization, encryption, and data protection. Ensure that the chosen Azure services and configurations meet these requirements and comply with relevant industry regulations and standards. Networking and connectivity: Evaluate the application's networking requirements, including bandwidth, latency, and connectivity to on-premises or other cloud resources. Plan for the appropriate Azure networking services, such as Virtual Networks, ExpressRoute, or VPN Gateway. Cost estimation: Estimate the costs of running the application in Azure, considering factors such as compute, storage, networking, and data transfer. Use the Azure pricing calculator and consider cost optimization strategies, such as reserved instances, spot instances, or Azure Hybrid Benefit. Application modernization: Identify opportunities to modernize the application by leveraging Azure's PaaS and serverless offerings, such as Azure App Service, Azure Functions, or Azure Logic Apps. This can help improve the application's scalability, maintainability, and cost-efficiency. Migration strategy: Based on the assessment, choose the appropriate migration strategy, such as rehosting (lift-and-shift), refactoring (re-architecting), or rebuilding (re-platforming). Develop a detailed migration plan, including timelines, resources, and testing procedures.

Can you explain the difference between Azure Service Bus, Event Hubs, and Event Grid? Azure Service Bus is a fully managed enterprise integration message broker that supports both point-to-point and publish-subscribe communication patterns. It is designed for high-throughput, low-latency messaging scenarios.

Azure Event Hubs is a big data streaming platform and event ingestion service that can process millions of events per second. It is designed for real-time data processing and analytics.

Azure Event Grid is a fully managed event routing service that enables event-driven, reactive programming. It connects event sources with event handlers using a publish-subscribe model and supports filtering and routing based on event types and data.

What is Azure Active Directory (AAD), and how does it differ from an on-premises active directory? Azure Active Directory (AAD), now Microsoft Entra ID, is a cloud-based identity and access management service that provides single sign-on (SSO), multi-factor authentication, and identity protection for applications and services.

AAD differs from an on-premises active directory in several ways:

AAD is a cloud-based service, while an on-premises active directory is hosted on your infrastructure. AAD supports modern authentication protocols like OAuth 2.0 and OpenID Connect, while an on-premises active directory primarily uses Kerberos and NTLM. AAD provides built-in integration with other Azure services and third-party applications, while an on-premises active directory requires additional configuration and integration.

What are Azure Virtual Machines (VMs), and how do they differ from other computing options in Azure? Azure Virtual Machines (VMs) are Infrastructure-as-a-Service (IaaS) offerings that provide on-demand, scalable compute resources in the cloud. VMs differ from other compute options in Azure, such as Web Apps and Functions, in that they provide more control over the underlying infrastructure, including the operating system, networking, and storage. This makes VMs suitable for workloads that require custom configurations or need to run specific software that is not supported by other Azure compute services.

What is Azure Blob Storage, and what are its key features? Azure Blob Storage is a scalable, cost-effective object storage service for unstructured data, such as text, images, videos, and binary files. Key features of Azure Blob Storage include:

High availability and durability through data replication across multiple data centers. Support for hot, cool, and archive access tiers to optimize storage costs based on data access patterns. Integration with Azure Content Delivery Network (CDN) for global content distribution. Fine-grained access control and data encryption for security and compliance

What is Azure DevOps, and how does it help developers? Azure DevOps is a suite of services and tools for automating the software development lifecycle, including planning, coding, building, testing, deploying, and monitoring applications.

Azure DevOps helps developers by providing:

A centralized platform for managing work items, source code, builds, releases, and test plans. Integration with popular development tools and frameworks, such as Visual Studio, Eclipse, and Jenkins. Built-in support for continuous integration (CI) and continuous deployment (CD) pipelines. Collaboration features for teams, such as Git repositories, pull requests, and Kanban boards.

What are the best practices for monitoring, logging, and alerting in Azure? Best practices for monitoring, logging, and alerting in Azure are to:

Use Azure Monitor: Leverage Azure Monitor to collect, analyze, and visualize performance metrics, logs, and custom events from Azure resources and applications. Enable diagnostic settings: Configure diagnostic settings for Azure resources to collect resource logs, metrics, and activity data.

Utilize log analytics: Store and query log data in a Log Analytics workspace, create custom queries, and visualize data using Azure Dashboards.

Implement application insights: Integrate Application Insights for application performance monitoring, exception tracking, and distributed tracing.

Set up alerts: Create alerts and action groups based on specific metrics, log queries, or events, and configure notifications or automated actions.

Monitor security: Use Azure Security Center (now called Microsoft Defender for Cloud) for continuous security monitoring, threat detection, and compliance assessment. Establish custom metrics and events: Track custom metrics and events relevant to your application using custom code or third-party tools.

Regularly review and optimize: Periodically review monitoring data, identify trends, and optimize resource performance, cost, and reliability.

What is Azure Kubernetes Service (AKS), and what are its benefits? Azure Kubernetes Service (AKS) is a managed container orchestration service based on the Kubernetes platform. AKS simplifies the deployment, scaling, and management of containerized applications by providing:

A fully managed Kubernetes control plane, with automatic upgrades and patching. Integration with Azure services, such as Azure Active Directory, Azure Monitor, and Azure Policy. Support for advanced networking, storage, and security features. Tools and utilities for cluster management, such as the Kubernetes dashboard and the kubectl command-line interface.

How does Azure ensure data security and privacy? Azure provides multiple layers of security, such as data encryption at rest and in transit, network isolation, and access control. Azure also complies with industry standards and regulations, such as GDPR, HIPAA, and PCI DSS.

What is Azure Private Link, and how does it improve network security? Azure Private Link enables you to access Azure services over a private connection from your on-premises or virtual network. This improves network security by keeping traffic within the Azure backbone network and avoiding exposure to the public internet.

How can you monitor and audit Azure resources for security and compliance? Azure provides various tools and services for monitoring and auditing resources, such as Azure Monitor, Azure Security Center, and Azure Policy. These tools help you detect and respond to security threats, enforce compliance policies, and generate audit reports for regulatory purposes.

What is the role and key responsibilities of an Azure administrator? An Azure Administrator manages and maintains Azure cloud infrastructure, services, and resources. Their key responsibilities include:

Provisioning, configuring, and monitoring Azure resources and services. Implementing and managing storage, compute, and networking components. Ensuring high availability, scalability, and performance of Azure infrastructure. Managing and monitoring security, identity, and access control. Troubleshooting and resolving issues related to Azure services and resources.

What are the key differences between Azure Resource Manager (ARM) templates and Azure PowerShell for managing Azure resources? ARM templates are JSON files that define the resources, configurations, and dependencies for an Azure deployment. They provide a declarative way to manage Azure resources and enable Infrastructure as Code (IaC) practices. ARM templates are language-agnostic and can be used with various tools and platforms.

Azure PowerShell is a command-line interface for managing Azure resources using PowerShell scripts. It provides a procedural way to manage resources and is best suited for automation tasks and interactive management.

How do you ensure high availability and disaster recovery for Azure Virtual Machines (VMs)? To ensure high availability for Azure VMs, you can:

Deploy VMs in an Availability Set, which distributes VMs across multiple fault domains and update domains within a data center. Use Azure Virtual Machine Scale Sets to automatically scale the number of VM instances based on demand or a predefined schedule. Deploy VMs in multiple Azure regions and use Azure Traffic Manager or Azure Front Door to distribute traffic across regions. For disaster recovery, you can:

Use Azure Site Recovery to replicate VMs to a secondary Azure region and enable failover in case of a disaster. Regularly back up VMs using Azure Backup and restore them to a new VM in case of data loss or corruption.

What is Azure Storage Service Encryption (SSE), and how does it help protect data? Azure Storage Service Encryption (SSE) is a feature that automatically encrypts data at rest in Azure Blob Storage, File Storage, Table Storage, and Queue Storage. SSE uses Azure-managed encryption keys or customer-managed keys to encrypt data before it is written to storage and decrypts it when it is read. This helps protect data from unauthorized access and ensures compliance with data security and privacy regulations.

How do you monitor and optimize the performance of Azure resources? To monitor and optimize the performance of Azure resources, you can:

Use Azure Monitor to collect, analyze, and visualize performance metrics and logs from Azure resources. Set up alerts and notifications based on performance thresholds or specific events. Use Azure Advisor to get personalized recommendations for optimizing resource performance, cost, security, and reliability. Implement autoscaling for compute resources, such as VMs and App Services, to adjust capacity based on demand. Use Azure CDN and Azure Traffic Manager to optimize content delivery and network performance.

What are the key components of Azure Identity and Access Management (IAM), and how do they help secure Azure resources? The key components of Azure IAM include:

Azure Active Directory (AAD): A cloud-based identity and access management service that provides single sign-on, multi-factor authentication, and identity protection for applications and services. Role-Based Access Control (RBAC): A mechanism for controlling access to Azure resources based on user roles and permissions. RBAC enables you to grant the least privilege necessary for users to perform their tasks. Azure Privileged Identity Management (PIM): A service that helps manage, control, and monitor access to privileged accounts and resources in Azure. PIM provides features such as just-in-time access, approval workflows, and access reviews.

What is Azure policy, and how does it help enforce compliance and governance in Azure? Azure Policy is a service that enables you to define, enforce, and audit policies for Azure resources. Policies are rules that govern the properties, configurations, and actions of resources to ensure compliance with organizational standards and regulatory requirements. Azure Policy helps enforce compliance and governance by:

Automatically applying policies to resources during deployment and preventing non-compliant resources from being created. Continuously monitoring existing resources for compliance and reporting violations. Integrating with Azure DevOps and ARM templates to enable policy-driven infrastructure as code.

Azure networking interview questions 24. What is Azure Virtual Network (VNet), and what are its key features? Azure Virtual Network (VNet) is a logically isolated network within the Azure cloud that enables you to connect Azure resources and on-premises networks securely. Key features of Azure VNet include:

Private IP address space and DNS settings for resources within the VNet. Subnets for organizing and segmenting resources based on security and network requirements. Network Security Groups (NSGs) for controlling inbound and outbound traffic to resources. Virtual Network Gateway for connecting VNets to on-premises networks using VPN or ExpressRoute. VNet peering for connecting VNets within the same or different Azure regions.

What is Azure Network Security Group (NSG), and how does it help secure Azure resources? Azure Network Security Group (NSG) is a virtual firewall that controls inbound and outbound network traffic to and from Azure resources, such as VMs and subnets. NSGs use security rules to define allowed or denied traffic based on source and destination IP addresses, ports, and protocols. By applying NSGs to resources, you can restrict network access and protect them from unauthorized access and attacks.

What is Azure Load Balancer, and how does it help distribute traffic to Azure resources? Azure Load Balancer is a network service that distributes incoming network traffic across multiple resources, such as VMs, to ensure high availability, scalability, and low latency. Azure Load Balancer supports both Layer 4 (TCP/UDP) and Layer 7 (HTTP/HTTPS) traffic and provides features such as: Health probes for monitoring the availability and responsiveness of resources. Load balancing rules for distributing traffic based on source and destination IP addresses, ports, and protocols. Session persistence for maintaining client connections to the same resource during a session. Integration with Azure Availability Sets and Virtual Machine Scale Sets for distributing traffic across fault domains and update domains.

What is Azure ExpressRoute, and when should you use it? Azure ExpressRoute is a dedicated, private network connection between your on-premises infrastructure and Azure data centers. ExpressRoute provides faster, more reliable, and more secure connectivity compared to a standard internet-based VPN connection. You should use ExpressRoute when:

You require low-latency, high-bandwidth connectivity between your on-premises and Azure environments. You need to transfer large amounts of data between your on-premises and Azure environments. You have strict security and compliance requirements that mandate a private connection to Azure.

What is Azure Backup, and how does it help protect Azure resources? Azure Backup is a cloud-based backup service that enables you to back up and restore Azure resources, such as VMs, databases, and file shares. Azure Backup helps protect Azure resources by:

Providing a centralized, scalable, and cost-effective solution for backing up data and applications. Supporting incremental backups, which reduce storage and network costs by only backing up changed data. Encrypting backup data at rest and in transit for security and compliance. Offering flexible retention policies and recovery options to meet your business continuity and disaster recovery requirements.

What is Azure site recovery, and how does it help with disaster recovery in Azure? Azure Site Recovery is a cloud-based disaster recovery service that enables you to replicate, failover, and recover Azure resources and on-premises workloads in case of a disaster or outage. Azure Site Recovery helps with disaster recovery in Azure by:

Providing a simple, automated, and cost-effective solution for replicating and recovering resources across Azure regions or between on-premises and Azure environments. Supporting various replication technologies, such as Hyper-V Replica, Azure VM replication, and VMware vSphere replication. Offering customizable recovery plans, including failover, failback, and testing capabilities. Integrating with Azure Monitor and Azure Automation for monitoring and orchestrating disaster recovery processes.

What is Azure cost management, and how does it help control and optimize Azure spending? Azure Cost Management is a suite of tools and services that help you monitor, analyze, and optimize your Azure spending. Azure Cost Management provides:

Cost analysis reports and dashboards for visualizing and understanding your Azure spending patterns. Budgets and alerts for tracking and controlling spending against predefined limits. Cost recommendations based on your usage patterns and Azure best practices. Integration with Azure Policy for enforcing cost-related policies and compliance.

What are some best practices for securing Azure resources and data? Some best practices for securing Azure resources and data include:

Implementing the principle of least privilege by granting users and applications the minimum permissions necessary to perform their tasks. Using Azure Active Directory and Role-Based Access Control (RBAC) for managing access to resources and services. Encrypting data at rest and in transit using Azure Storage Service Encryption (SSE) and Azure Disk Encryption. Regularly monitoring and auditing resource activity using Azure Monitor, Azure Security Center, and Azure Policy. Implementing network security best practices, such as using Network Security Groups (NSGs), Azure Firewall, and Azure Private Link. Regularly backing up resources and implementing disaster recovery plans using Azure Backup and Azure Site Recovery.

What is NSG? NSG stands for Network Security Group that has a list of ACL (Access Control List) rules which either allows/denies network traffic to subnets or NICs (Network Interface Card) connected to a subnet or both. When NSG is linked with a subnet, then the ACL rules are applied to all the Virtual Machines in that subnet.

Restrictions of traffic to individual NIC can be done by associating NSG directly to that NIC.

10. VM creation is possible using Azure Resource Manager in a Virtual Net

Is LDAP Active Directory? No, LDAP is not the Active Directory. LDAP, the Lightweight Directory Access Protocol, is the protocol that helps to communicate with the Active Directory.

In other words, LDAP helps you provide the communication language that helps the applications communicate with the different directory service servers.

LDAP (Lightweight Directory Access Protocol) is an open-access protocol that different directory services, such as Active Directory, Red Hat Directory Service, and Apache Directory Server, can understand.

List the different cloud deployment models available in Azure. Based on one's business requirements, there are three different cloud deployment models in which you can deploy any Azure cloud service -

Private Cloud- It comprises cloud computing resources owned entirely by a single company. This could mean hosting one's apps on their on-site servers or a dedicated server offered by the cloud service provider.

Public Cloud- The most common cloud deployment model, the public cloud, involves a third-party cloud service provider to manage and control the cloud resources distributed via the internet. The cloud provider owns all hardware, software, and other supporting facilities in this case. Example- Microsoft Azure.

Hybrid Cloud- A hybrid cloud is a blend of private and public clouds. These cloud deployment models employ private cloud service features such as processing confidential data and public cloud services such as hosting commercial applications.

What are availability sets? An availability set is a cluster of virtual machines that enables Azure to understand how an application offers redundancy and high accessibility. To provide a highly available application and achieve the 99.95 percent Azure SLA, creating two or more VMs within an availability set is safer. The two domains assigned to every VM in an availability set are- an update domain and a fault domain.

Update domains combine virtual machines and the underlying hardware that can reboot simultaneously. Before the maintenance on a different update domain, a restarted update domain takes 30 minutes to recover.

Fault domains are the set of virtual machines that share a common power source and a common network switch. Virtual machines specified in your availability set are split into up to three failure domains by default. Integrating virtual machines into an availability set helps mitigate the impact of hardware malfunctions, network outages, and power outages.

Explain Azure Blob storage. Azure Blob storage is a Microsoft storage offering that is meant explicitly for cloud objects and is suitable for holding vast quantities of unstructured data. Unstructured data, such as text or binary data, does not correspond to a specific data model or description.

Blob storage is suitable for sharing images/docs directly to a browser, storing files meant for multiple access, streaming audio/video files, backing up data, creating log files, etc.

There are three types of resources available in blob storage:

A storage account- In Azure, a storage account gives your data its namespace.

A container in the storage account- A container manages a group of blobs, and there are no constraints on the number of blobs stored in a container.

A blob within the container- A blob is a Binary Large Object (BLOB), which can be any form of file or document of any size. Azure supports three different types of Blobs:

Block blobs: These are meant to store individual blocks of text and binary files and have a storage capacity of up to 195GB.

Append blobs: These are useful for append tasks like logging data in log files.

Page blobs: These store random access files up to 8 TiB and are intended for reading/writing operations that occur often.

Explain the Site Recovery feature of Azure. Site Recovery is a service that keeps corporate apps and workloads operational during outages, assuring smooth business processes. This feature offered by Azure works in such a way that it copies activities from a primary location to a secondary location with the help of physical and virtual machines (VMs). When your primary location goes down, you switch to the secondary location, where you can access the apps. You can roll back to the principal location once it has been restored. Site Recovery ensures replication for Azure VMs, on-site VMs, Azure Stack VMs, and physical servers.

What is meant by Azure Service Fabric? Azure Service Fabric is a parallel processing platform that ensures simple packaging, smooth deployment, and efficient handling of robust and reliable microservices and containers. Service Fabric allows you to create microservice-based applications. The major constraints in designing and administering cloud-native apps are also handled by Service Fabric. It has a huge emphasis on designing stateful services. You can run container-based stateful services written in any language or code using the Service Fabric computing architecture. Also, you can create Service Fabric clusters in the private clouds with Windows Server and Linux, as well as in other public clouds.

Discuss the different types of backups available in Azure? To maintain the high availability of your data as well as storage, Azure Backup supports three methods of backup-

i. Locally redundant storage (LRS) copies your data three times in a centralized storage unit within the same region. LRS is a cost-effective option for safeguarding data against local hardware breakdowns.

ii. Geo-redundant storage (GRS) is the standard and preferred backup mode that replicates your data to a secondary region far away from the primary location of the source data. GRS is more expensive than LRS, but it provides greater data resilience, even in the event of a local disruption.

iii. Zone-redundant storage (ZRS) backs up data in availability zones, ensuring data retention and durability in the same zone. You can back up your essential activities that involve data retention and must run without disruption since ZRS has zero latency

What types of storage services does Azure provide? The following data options are provided on the Azure Storage platform:

i. Azure Blob Storage- Text and binary data can be stored in Azure Blobs, which is highly scalable object storage. It stores arbitrary data and allows them to be retrieved as block blobs on a huge scale.

ii. Azure File Storage- Managed file sharing for cloud and on-premises operations can be done with Azure Files. Using the standard Server Message Block (SMB) protocol, you can access fully managed cloud file shares from just about anywhere.

iii. Azure Queue Storage- Azure Queues is a messaging repository that allows application modules to communicate reliably. Asynchronous message queueing between software modules is supported.

iv. Azure Table Storage- Azure Tables is a NoSQL database for storing structured data without a schema. It lets you store organized NoSQL data in the cloud and provides a schemaless key/attribute storage.

v. Azure Disk Storage- Block-level storage units for Azure VMs are called Azure Disks. They allow data to be kept and retrieved from an associated virtual hard disk continuously.

What are Network Security Groups in Azure? A network security group is a group of security rules (Access Control List of rules) that allow or prohibit incoming and outgoing network traffic for various Azure resources. Subnets or specific NICs connected to a subnet can be linked with NSGs in such a way that the rules apply to every single VM in that particular subnet. You can define the sender and receiver address, as well as the host and protocol, for each rule.

What do you mean by Azure Resource Manager Templates (ARM)? Azure Resource Manager (ARM) templates are JSON files mainly used to implement infrastructure as code for your Azure solutions. The template outlines your project's infrastructure and configuration. A declarative syntax is used in the template, which allows you to declare what you want to deliver without the use of any actual programming/coding. The template must include the resources to launch as well as their attributes.

Briefly discuss the Azure Kubernetes Service (AKS). Azure Kubernetes Service (AKS) aims at the easy installation of a hosted Kubernetes cluster on Azure. It is solely responsible for managing containerized applications. It's an open-source solution for scaling, automatic deployment, and managing traffic. Azure deals with important functions like health diagnosis and management as a managed Kubernetes service. You solely manage and maintain the agent nodes because the Kubernetes masters are controlled by Azure. As a result, AKS is completely free; you only have to pay for the agent nodes in your clusters.

What is the procedure for adding an administrator to the Azure portal? The owner role must be assigned to an administrator before it may be added to the Azure portal. It will only be able to control the subscription's resources that have been assigned to it. These are the steps to add an administrator:

i. Firstly, to use the Azure portal, go to https://azure.microsoft.com/en-in/features/azure-portal/ and sign in.

ii. Then, select the Hub menu followed by Subscription, and select the subscription that the administrator will need access to.

iii. In the subscription blade, select Access control (IAM) and then click Add.

iv. Select Owner from the drop-down menu under Select a role.

v. In this field, enter the email address of the user who will be designated as the owner.

vi. Select the user by clicking on his or her name.

Define table storage in Azure. Huge quantities of structured data are stored in the Windows Azure Table storage service.

It is a NoSQL service that takes calls from both inside and outside the Windows Azure cloud.

Table: A table is a grouping of objects. Tables do not impose a format on entities; therefore, a single table can contain entities with various sets of characteristics. Many tables can be found in a single account.

Entity: Similar to a database entry, an entity is a collection of attributes. A single entity can be 1MB in size.

Properties: A name-value pair is referred to as a property. Each object can have up to 252 properties. In addition, each entity has three system properties: a partition key, a row key, and a timestamp.

1 What is the Azure active directory?

2 What is identity in the Azure active directory?

3 What is the tenant in the azure ad?

4 What do you mean by the guest user in azure ad

5 What do you mean by security groups in azure ad?

6 How to create a user in the azure active directory?

7 How to remove a user from azure ad?

8 What is self-service password reset (SSPR) in azure ad? 9 What is multi-factor authentication in the azure active directory?

10 How to enable MFA in using the Azure portal?

11 What is dynamic groups in azure ad?

12 What is Conditional Access in Azure Active Directory?

13 Can users outside the organization access the azure resources?

14 What is risk detection in the azure?

15 What are the different Azure AD licenses?

16 What are the features of Azure AD Free License?

17 What are the main features of Azure Active Directory Premium P1?

18 What are the main features of Azure Active Directory Premium P2?

19 Do you think Azure AD is Free?

20 How to connect to azure active through PowerShell?

21 What is azure ad connect in Azure Active Directory?

22 What is tenant id in Azure Active Directory?

23 Assume that you work as Azure Administrator for Azurelib.com. You have been asked to add 1000 users to the azure active directory. How can you do it in an efficient way?

24 Assume that you work as Azure Administrator for Azurelib.com. You have been asked to set the default password for all the new users added to the Active Directory. Can you set the default password for the first time user in azure ad? 25 What is the default domain for the azure ad tenant?

26 How would you compare External Identities solutions?

27 Final Thoughts

What is the Azure active directory?

Azure Active Directory (Azure AD) is basically an identity and access management service provided the Microsoft Azure. It is the extension of the Microsoft active directory. It helps users, employees to seamlessly access the various resources as per their role with just one sign-on. It can be integrated with a huge number of external services and resources like SaaS applications and other Microsoft products like Office 365, Dynamics 365, etc.

What is Azure Active Directory

Azure Active Directory Tenant

What is identity in the Azure active directory?

Identity in the azure ad represents a thing or something that can be authenticated by some means. It can represent a user having a unique username and password associated with it for authentication. It’s not always just the user, sometimes we also want to authenticate applications or servers, they can also be treated as the identity in the azure ad. They can be authenticated using certificates or secret keys.

What is the tenant in the azure ad?

A dedicated and trusted instance of Azure AD that’s automatically created when your organization signs up for a Microsoft cloud service subscription, such as Microsoft Azure, Microsoft Intune, or Microsoft 365. An Azure tenant represents a single organization.

What do you mean by the guest user in azure ad

In an organization sometimes you want a few external organization users to collaborate with your applications and servers to perform certain operations. In those cases to authenticate those users and provide B2B collaboration guest user is used. You can invite the external/third party user by creating the Guest user for them. Once your works get done, you can remove the same.

What do you mean by security groups in azure ad?

You can create security groups in azure ad to logically separate the set of users based on their roles, responsibility, access permissions. Once a group has been created, multiple users can be added or remove from it.

How to create a user in the azure active directory?

For creating the user you need to have admin permission to add the user. Go to the azure ad in the Azure portal. Go to create user, provide name, email, and other information.

How to remove a user from azure ad?

Go to the azure ad in the Azure portal. Open the group from which users need to be removed. You will see a list of users available. Search for the user to delete, select and click remove user.

What is self-service password reset (SSPR) in azure ad? The azure ad provides a seamless way for password reset for its user. You don’t need any admin or network team help for password resetting. or unlocking the account. This has reduced a lot of burden on the IT helpdesk team of any organization.

What is multi-factor authentication in the azure active directory? Multi-factor authentication is two-step verification process. First is something you know (like a password or key) and second is something you possess (like OTP or biometric authentication such as a fingerprint). These two step verification has become the new norm and has strengthened the user account immensely.

How to enable MFA in using the Azure portal? For MFA you need to have an azure active directory premium license. An admin can go to the conditional access screen from there you can enable the MFA for the user as per the business need.

What is dynamic groups in azure ad? As the name suggests dynamic groups are dynamic in nature, and users from them will be automatically added and remove from groups. Automatically rule will be run on the user attribute, if that condition satisfies user will be kept in the group otherwise removed.

What is Conditional Access in Azure Active Directory? Conditional Access policies at their simplest are if-then statements, if a user wants to access a resource, then they must complete an action. Example: A payroll manager wants to access the payroll application and is required to perform multi-factor authentication to access it.

Can users outside the organization access the azure resources? Yes, outside users can access the azure resources by inviting them as a guest users under B2B collaboration.

What is risk detection in the azure? Identifying the suspicious activity against the user account is termed risk detection in azure. It’s a part of azure identity protection.

What are the different Azure AD licenses?

Azure Active Directory Free

Azure Active Directory Premium P1

Azure Active Directory Premium P2

“Pay as you go” feature licenses

What are the features of Azure AD Free License?

Users and Group Management

Sync on-premises identities to azure ad

Password self service

Single sign-on (Only for cloud services) What are the main features of Azure Active Directory Premium P1?

All the features of Free tire

Hybrid user single sign on (on-premises and cloud both)

Self service password for on-premises user as well Dynamic group management

Microsoft Identity Manager

What are the main features of Azure Active Directory Premium P2?

All the features of free tire and P1

Azure AD Identity Protection

Risk-based conditional access (like not allow user to login from certain low secure locations)

Provide Just in time access

Do you think Azure AD is Free?

All the licenses user of Microsoft Online business service like Microsoft 365, Microsoft Azure gets the Azure AD free features by default. However, there are certain extra features of azure ad you can get by upgrading to the paid version of the azure ad.

How to connect to azure active through PowerShell?

You need to have permission to connect to the azure ad. Once you have you use below command to connect to the azure ad.

Connect-AzureAD

What is azure ad connect in Azure Active Directory?

Microsoft azure ad connect is the tool needed for connecting the on-premises identity infrastructure to azure ad. Using the azure ad connect helps the tenant to connect to local directories.

What is tenant id in Azure Active Directory?

In the azure active directory, we have tenants i.e. the organization representation. Every tenant is assigned a unique id known as tenant id

Assume that you work as Azure Administrator for Azurelib.com. You have been asked to add 1000 users to the azure active directory. How can you do it in an efficient way?

In the azure ad we have a bulk user creation facility available. I create the user in bulk by putting the user in CSV file and upload the same csv file using the bulk user creation functionality.

Assume that you work as Azure Administrator for Azurelib.com. You have been asked to set the default password for all the new users added to the Active Directory. Can you set the default password for the first time user in azure ad?

Yes, you can set the default login password for the user.

What is the default domain for the azure ad tenant? Default domain is onmicrosoft.com you can change it by providing the custom domain.

How would you compare External Identities solutions?

External user collaboration (B2B) Access to consumer/customer-facing apps (B2C)

Primary scenario Collaboration using Microsoft applications (Microsoft 365, Teams, etc.) or your own applications (SaaS apps, custom-developed apps, etc.).

Identity and access management for modern SaaS or custom-developed applications (not first-party Microsoft apps).

Intended for

Collaborating with business partners from external organizations like suppliers, partners, vendors. Users appear as guest users in your directory. These users may

or may not have managed IT. Customers of your product. These users are managed in a separate Azure AD directory.

Microsoft Azure Active Directory Official Documentation Link

Techie

Monday, 29 January 2024

Azure interview Questions & Answers

Friday, 26 January 2024

VMWARE INTERVIEW QUESTIONS LATEST

devops interview questions

Followers